Transport Layer Security Channel ID

Transport Layer Security Channel ID (TLS Channel ID, previously known as Transport Layer Security – Origin Bound Certificates TLS-OBC)^[1] is a draft RFC proposal^[2]^[3] Transport Layer Security (TLS) extension that aims to increase TLS security by using certificates on both ends of the TLS connection. Notably, the client is permitted to dynamically create a local, self-signed certificate that provides additional security.

It can also protect users from the related domain cookie attack.^[4]^[5]

References

^ TLS-OBC RFC
^ TLS Channel ID RFC
^ Dietz, Michael; Czeskis, Alexei; Balfanz, Dirk; Wallach, Dan (August 8–10, 2012). "Origin-Bound Certificates: A Fresh Approach to Strong Client Authentication for the Web" (PDF). Proceedings of the 21st USENIX Security Symposium. {{cite conference}}: Unknown parameter |booktitle= ignored (|book-title= suggested) (help)
^ "Related Domain Cookie Attack"^{[unreliable source?]}
^ additional info is available here^{[unreliable source?]}

External links

This computer security article is a stub. You can help Wikipedia by expanding it.

[1] TLS-OBC RFC

[2] TLS Channel ID RFC

[3] Dietz, Michael; Czeskis, Alexei; Balfanz, Dirk; Wallach, Dan (August 8–10, 2012). "Origin-Bound Certificates: A Fresh Approach to Strong Client Authentication for the Web" (PDF). Proceedings of the 21st USENIX Security Symposium. {{cite conference}}: Unknown parameter |booktitle= ignored (|book-title= suggested) (help)

[4] "Related Domain Cookie Attack"^{[unreliable source?]}

[5] tional info is available here^{[unreliable source?]}

[1]

[2]

[3]

[4]

[5]